$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft File: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft (raw, json) Hash identifier: BAtZhcScx2J7DuQowzhDOOeADqNcB5uoaUJBuMQVe+4= Subject key identifier: EE:9D:D1:6A:CB:0A:89:7D:7F:56:35:8C:BC:51:14:A9:70:5F:3E:83 Authority key identifier: A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 Certificate issuer: /CN=A91E0267/serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Certificate serial: 351E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft Manifest number: 3517 Signing time: Mon 02 Mar 2026 01:30:14 +0000 Manifest this update: Mon 02 Mar 2026 01:30:13 +0000 Manifest next update: Mon 09 Mar 2026 01:30:13 +0000 Files and hashes: 1: oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl (hash: pwB5MVh3XX3NP0Wru1BrLiURih9cPZFoCc8EL+6meGM=) 2: 77C9E89A3CDC11EEBFA0475EC4F9AE02.roa (hash: UMXvkv7lMBhThxZyIQzwCdA4VPiMvF4PRU8CMRsnFCE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:30:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13598 (0x351e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0267, serialNumber=A01D23F781E8FF353B18BD188284C9ADFCD9E396 Validity Not Before: Mar 2 01:30:13 2026 GMT Not After : Mar 9 01:30:13 2026 GMT Subject: CN=69a4e826-a662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ea:ff:ab:1b:f1:78:64:9c:86:1b:a2:67:d6: 75:3c:8b:a9:55:cd:05:8e:02:a3:ba:10:e1:91:74: 44:4b:9f:de:43:2b:70:b4:6c:db:6f:47:33:12:74: 4d:38:84:43:a6:08:4a:55:00:7f:2b:4e:a2:d0:a8: f2:83:7f:f1:b6:85:15:59:8e:29:01:54:cf:af:3b: fe:14:e5:8e:e8:6b:c0:d4:af:c4:10:ee:f2:1d:98: 3d:75:04:5b:38:3a:d7:22:72:07:80:cd:dc:41:c2: 74:4c:a4:ee:a4:65:08:1d:7d:1d:86:f9:7d:9f:eb: 04:46:40:29:c9:63:86:3d:cf:72:b4:79:dd:c4:48: c1:b0:f1:f3:b2:54:bd:f5:bf:b5:0b:4a:28:22:7a: 10:93:1b:a5:f2:e4:df:ae:ef:52:b7:a3:18:3e:ed: 02:0f:bb:db:47:93:9b:3c:65:bc:39:50:b8:b4:2a: 42:1e:1f:2f:43:70:b7:11:f5:4d:cf:c2:71:51:c4: 28:d7:d9:b1:4a:d0:2c:b9:7e:65:79:92:b5:53:90: c2:65:f7:b8:06:47:24:63:ce:2b:9d:18:20:e9:7c: 3f:b8:af:b5:89:99:5e:c0:ab:ce:7e:76:92:03:65: 66:c8:29:12:68:2d:b1:f5:d7:0f:a0:04:e9:fd:87: 9e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:9D:D1:6A:CB:0A:89:7D:7F:56:35:8C:BC:51:14:A9:70:5F:3E:83 X509v3 Authority Key Identifier: keyid:A0:1D:23:F7:81:E8:FF:35:3B:18:BD:18:82:84:C9:AD:FC:D9:E3:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0267/190EAB5C1D9811E29E65FF8108B02CD2/oB0j94Ho_zU7GL0YgoTJrfzZ45Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:ca:4c:cb:50:d7:e5:8f:6b:90:a1:18:74:e2:61:66:32:13: 7c:93:b8:ce:ad:a9:d9:4b:de:00:b1:0b:30:26:95:7e:c1:e3: e1:c7:bc:37:a5:10:07:af:b0:76:3a:72:e5:57:db:54:48:50: da:16:04:e7:12:ec:ba:f6:dd:f2:a5:12:70:4c:dc:c8:31:aa: 91:09:7f:c0:ef:1d:75:a3:69:7b:9b:5e:7e:e8:3b:a4:9c:83: 06:6c:e8:64:b5:14:ba:93:3c:cd:12:cf:53:c2:7f:21:ca:8d: d6:09:79:c7:fa:5b:59:bd:a1:a0:7f:3a:57:75:42:f7:54:89: 09:ef:aa:63:a7:16:d1:02:e4:39:74:09:5b:92:53:29:f6:61: 7b:a4:88:88:bb:54:15:75:a1:f0:7a:01:de:99:f2:43:2b:cd: 07:e3:3d:75:7a:ab:d1:24:d3:e7:8e:a6:1c:8e:2e:7d:7d:02: 0f:cb:12:df:a4:66:ee:66:45:c4:f1:1a:f2:06:f2:eb:15:4f: b8:05:7e:26:3b:4c:ba:3c:7d:eb:36:e0:6d:f1:f7:4f:27:cf: 57:15:8c:bc:a8:4a:b3:96:c4:b9:d5:c3:a8:d0:9c:c1:83:e8: b9:b2:14:43:8d:f3:98:f1:55:c1:7d:76:8d:74:20:e2:67:1a: 71:87:7f:90 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAyNjcxMTAvBgNVBAUTKEEwMUQyM0Y3ODFFOEZGMzUzQjE4QkQxODgyODRDOUFE RkNEOUUzOTYwHhcNMjYwMzAyMDEzMDEzWhcNMjYwMzA5MDEzMDEzWjAYMRYwFAYD VQQDEw02OWE0ZTgyNi1hNjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwur/qxvxeGSchhuiZ9Z1PIupVc0FjgKjuhDhkXRES5/eQytwtGzbb0czEnRN OIRDpghKVQB/K06i0Kjyg3/xtoUVWY4pAVTPrzv+FOWO6GvA1K/EEO7yHZg9dQRb ODrXInIHgM3cQcJ0TKTupGUIHX0dhvl9n+sERkApyWOGPc9ytHndxEjBsPHzslS9 9b+1C0ooInoQkxul8uTfru9St6MYPu0CD7vbR5ObPGW8OVC4tCpCHh8vQ3C3EfVN z8JxUcQo19mxStAsuX5leZK1U5DCZfe4BkckY84rnRgg6Xw/uK+1iZlewKvOfnaS A2VmyCkSaC2x9dcPoATp/YeeowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO6d0WrL Col9f1Y1jLxRFKlwXz6DMB8GA1UdIwQYMBaAFKAdI/eB6P81Oxi9GIKEya382eOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDI2Ny8xOTBFQUI1QzFE OTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196VTdHTDBZZ29USnJmelo0 NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CMGo5NEhvX3pVN0dMMFlnb1RKcmZ6WjQ1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDI2Ny8xOTBFQUI1QzFEOTgxMUUyOUU2NUZGODEwOEIwMkNEMi9vQjBqOTRIb196 VTdHTDBZZ29USnJmelo0NVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdMpMy1DX5Y9rkKEYdOJhZjITfJO4zq2p2UveALELMCaVfsHj4ce8N6UQB6+w djpy5VfbVEhQ2hYE5xLsuvbd8qUScEzcyDGqkQl/wO8ddaNpe5tefug7pJyDBmzo ZLUUupM8zRLPU8J/IcqN1gl5x/pbWb2hoH86V3VC91SJCe+qY6cW0QLkOXQJW5JT KfZhe6SIiLtUFXWh8HoB3pnyQyvNB+M9dXqr0STT546mHI4ufX0CD8sS36Rm7mZF xPEa8gby6xVPuAV+JjtMujx96zbgbfH3TyfPVxWMvKhKs5bEudXDqNCcwYPoubIU Q43zmPFVwX12jXQg4mcacYd/kA== -----END CERTIFICATE-----Generated at Mon Mar 2 05:01:11 2026 by rpki-client